CVE-2024-31475

CVSS 3.1 Score 8.2 of 10 (high)

Details

Published May 14, 2024

Updated: Jul 3, 2024

CWE ID 463

Summary

CVE-2024-31475 is a newly disclosed vulnerability affecting Aruba's Central Communications service, accessed via PAPI. This issue permits an attacker to delete arbitrary files on the underlying operating system. Successfully exploiting this vulnerability could lead to interrupted normal operations and compromised integrity of the affected Access Point. The deletion of essential system files may result in significant disruptions and potential data loss. This vulnerability poses a severe risk to network security and requires immediate attention and remediation from organizations using the affected Central Communications service.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database